$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/020A31F812B011E7A7C42661C4F9AE02.roa File: 020A31F812B011E7A7C42661C4F9AE02.roa (raw, json) Hash identifier: Y6ha1LXXijatzuKxRvx5GL0m9bXoYJ6BXHEwlVlS+Ls= Subject key identifier: CC:58:4F:83:DA:82:5A:7C:8C:C2:18:5A:27:2D:8A:90:D3:36:2C:24 Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1BDB Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/020A31F812B011E7A7C42661C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:14:55 +0000 ROA not before: Thu 08 May 2025 16:40:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136430 IP address blocks: 103.87.203.0/24 maxlen: 24 2001:df0:9500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7131 (0x1bdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: May 8 16:40:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4038e-3b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:8a:c0:08:28:19:74:4f:af:d9:e4:29:44:25: a7:ac:9c:8b:ce:30:d9:b8:90:27:61:ee:a6:09:8d: 06:2a:41:d7:5c:d9:61:74:56:29:11:00:c6:71:d2: 00:c4:31:62:f7:e0:89:a7:2e:d6:68:6f:e8:ea:8a: 81:aa:a6:95:3a:3f:13:37:36:dc:a6:3d:b2:1a:81: 41:ed:59:81:12:8f:8a:4a:da:8e:41:06:03:41:84: 0d:b7:aa:e1:20:12:b1:2f:1f:c9:07:27:b2:ac:c5: 08:ef:57:14:2e:a5:d1:1c:fa:51:e8:96:41:f1:6e: 9e:f5:9e:47:a9:4b:24:ec:0a:b0:9c:f4:51:61:0f: ba:cc:c7:35:78:71:a2:5a:a2:fb:c3:35:56:0f:64: 58:4e:b3:85:40:b3:cb:98:05:4a:6b:7f:dd:de:2b: 38:cc:aa:60:66:41:7b:65:7d:86:80:41:81:a9:a6: 06:75:6d:5c:8b:bf:55:01:a6:3e:f8:27:2e:1f:75: 38:f8:87:5f:d7:c8:09:26:9c:56:2c:1d:d7:01:5b: 70:0a:e2:8e:19:40:77:d0:48:9a:e1:33:61:29:9c: 18:98:29:9e:94:a5:38:89:56:4a:71:2e:81:9a:7d: aa:09:16:e5:1e:94:f0:6b:ae:87:04:5c:64:03:44: 2b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:58:4F:83:DA:82:5A:7C:8C:C2:18:5A:27:2D:8A:90:D3:36:2C:24 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/020A31F812B011E7A7C42661C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.203.0/24 IPv6: 2001:df0:9500::/48 Signature Algorithm: sha256WithRSAEncryption 3e:f5:a4:9d:77:ab:21:eb:4c:01:e6:78:c3:04:0f:6c:93:93: 59:85:1c:23:1e:90:c0:ac:bd:c0:0d:a9:e6:e7:b5:a3:29:d4: b7:45:f2:ba:7b:12:d7:3a:01:52:c0:f0:54:5a:03:cb:0f:94: c9:9d:db:30:b4:4d:4d:dd:90:30:78:b2:fe:31:65:84:fd:06: b1:66:1a:c4:e6:7b:ed:dc:48:02:ad:0f:c6:c3:a4:1b:31:b0: 6e:0f:83:b8:f7:61:62:05:a1:60:37:81:a2:41:90:03:24:0c: 73:33:e3:f0:a2:43:06:b3:86:a1:3f:2d:58:1b:6a:cc:ca:74: 38:3d:bf:ae:3e:1c:a7:d1:b2:11:8d:77:2e:a2:6b:68:f7:00: 89:35:41:f8:ec:39:9b:d4:3d:82:28:61:c8:be:f0:8c:47:93: 8b:a5:5a:80:c8:be:5c:72:08:e2:a3:e3:f7:c4:b5:d3:38:e1: 14:d6:18:05:69:61:65:28:3d:61:29:c3:fa:a6:11:3c:7f:b8: c9:61:3b:a9:07:20:f1:16:d0:72:6f:6e:50:c2:89:dd:e7:8d: 03:70:10:5b:3d:18:e1:00:f7:95:9e:f1:d3:f4:bd:34:df:a3: d7:d6:ec:32:e5:4f:5d:5a:40:c5:ed:32:11:6e:56:0c:b4:cd: b7:f9:64:87 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICG9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwNTA4MTY0MDQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDM4ZS0zYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkYrACCgZdE+v2eQpRCWnrJyLzjDZuJAnYe6mCY0GKkHXXNlhdFYpEQDGcdIA xDFi9+CJpy7WaG/o6oqBqqaVOj8TNzbcpj2yGoFB7VmBEo+KStqOQQYDQYQNt6rh IBKxLx/JByeyrMUI71cULqXRHPpR6JZB8W6e9Z5HqUsk7AqwnPRRYQ+6zMc1eHGi WqL7wzVWD2RYTrOFQLPLmAVKa3/d3is4zKpgZkF7ZX2GgEGBqaYGdW1ci79VAaY+ +CcuH3U4+Idf18gJJpxWLB3XAVtwCuKOGUB30Eia4TNhKZwYmCmelKU4iVZKcS6B mn2qCRblHpTwa66HBFxkA0QrnwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMxYT4Pa glp8jMIYWictipDTNiwkMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhERDUvRDVBMUExQzYxMkE3MTFFN0FEQjRERTREQzRGOUFFMDIvMDIwQTMxRjgx MkIwMTFFN0E3QzQyNjYxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ1fLMA8EAgACMAkDBwAgAQ3wlQAwDQYJKoZIhvcNAQELBQADggEB AD71pJ13qyHrTAHmeMMED2yTk1mFHCMekMCsvcANqebntaMp1LdF8rp7Etc6AVLA 8FRaA8sPlMmd2zC0TU3dkDB4sv4xZYT9BrFmGsTme+3cSAKtD8bDpBsxsG4Pg7j3 YWIFoWA3gaJBkAMkDHMz4/CiQwazhqE/LVgbaszKdDg9v64+HKfRshGNdy6ia2j3 AIk1QfjsOZvUPYIoYci+8IxHk4ulWoDIvlxyCOKj4/fEtdM44RTWGAVpYWUoPWEp w/qmETx/uMlhO6kHIPEW0HJvblDCid3njQNwEFs9GOEA95We8dP0vTTfo9fW7DLl T11aQMXtMhFuVgy0zbf5ZIc= -----END CERTIFICATE-----Generated at Mon Mar 2 11:39:53 2026 by rpki-client